cybersecurity @infosec.pub indepndnt @lemmy.world 8 mo. ago

"In a first, cryptographic keys protecting SSH connections stolen in new attack"

arstechnica.com In a first, cryptographic keys protecting SSH connections stolen in new attack

An error as small as a single flipped memory bit is all it takes to expose a private key.

I read most of this article trying to determine if I was impacted, so to save you the trouble:

The researchers traced the keys they compromised to devices that used custom, closed-source SSH implementations that didn’t implement the countermeasures found in OpenSSH and other widely used open source code libraries.

netsec @lemmy.world AtmaJnana @lemmy.world 7 mo. ago

In a first, cryptographic keys protecting SSH connections stolen in new attack

arstechnica.com /security/2023/11/hackers-can-steal-ssh-cryptographic-keys-in-new-cutting-edge-attack/

Furry Technologists @pawb.social Stefen Auris @pawb.social 8 mo. ago

In a first, cryptographic keys protecting SSH connections stolen in new attack | Ars Technica

arstechnica.com /security/2023/11/hackers-can-steal-ssh-cryptographic-keys-in-new-cutting-edge-attack/

Technology @lemmy.world boem @lemmy.world 8 mo. ago

In a first, cryptographic keys protecting SSH connections stolen in new attack

arstechnica.com /security/2023/11/hackers-can-steal-ssh-cryptographic-keys-in-new-cutting-edge-attack/

3 comments

You da real mvp
tldr 1 in a million RSA keys are vulnerable
I migrated most of my keys to ed25519 a while ago, I probably should keep going